CVE-2026-40367

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.